Jenkins

jenkins edition enterprise + open source the jenkins integration scans jenkins build logs for credentials and other sensitive data configuration the jenkins integration can be configured in trufflehog under integrations , or via a local configuration file (below) web configuration configure this integration from the integrations page in trufflehog you'll need the url of your jenkins server credentials for a scanner account (basic auth) — or no credentials, if your jenkins instance allows unauthenticated access to build logs local configuration local configuration supports two authentication modes basic auth — uses a jenkins account username and password unauthenticated — for jenkins instances that allow anonymous read access to build logs basic auth sources \ connection "@type" type googleapis com/sources jenkins endpoint https //jenkins example com basicauth username scanner account password xxxxxxxxxxxxxxxxxxxxxxxxxx name jenkins logs scanperiod 12h type source type jenkins verify true unauthenticated sources \ connection "@type" type googleapis com/sources jenkins endpoint https //jenkins example com unauthenticated {} name jenkins logs scanperiod 12h type source type jenkins verify true configuration options field type required description endpoint string yes the uri of the jenkins server insecureskipverifytls boolean no skip tls verification on the jenkins server setting this to true may pose security issues capabilities feature supported scan build logs ✅ scan base64 encoded data ✅ auto resume ✅ notes the jenkins integration scans build logs only job artifacts are not scanned